Reset Password

0
Total: 0,00 
View CartCheckout
  1. Home
  2. Privacy Policy RODO

Privacy Policy RODO

September 1, 2022 by admin

INFORMATION OBLIGATION

Below you will find all the necessary information regarding the processing of your personal data in connection with the provision of services and products.

1. who is the controller of my data?

The administrator of your personal data is the Sea Palace in Gaski. 76-034 Sarbinowo, Gąski 14

2 Who can I contact about issues related to the processing of my personal data?

We have not appointed a Data Protection Officer, but for all matters related to the processing of your personal data, you can contact us at e-mail: hello@palacmorski.pl

3 What is the scope of your personal data that we process?

In order to establish and effectively continue cooperation in the sale of our products/services, we need to process your contact, identification and financial settlement data, so in particular: name, correspondence data, telephone number or e-mail address, PESEL, data for issuing sales documents and processing payments in particular bank account number.

4. is my data processed in any other way?

As the controller of your data, we do not process your data in any other way.

5 To whom is my personal information shared?

We care about the confidentiality of your data. Due to the necessity of providing us with proper organization, e.g. in the field of IT infrastructure or day-to-day matters concerning our activity as an entrepreneur, as well as the realization of your rights, your personal data as our client may be transferred to entities cooperating with us: IT companies – providing us with IT solutions and hosting; legal advisors, accounting offices, financial and credit brokers, real estate brokers.

6. is my data transferred outside the European Union?

Your data is transferred to a third country due to the use of Google Inc. tools. and Microsoft Inc for archiving purposes. The transfer of data takes place only to Privacy Shield certified entities, Microsoft Inc and Google Inc regulations containing DPA have been accepted.

7. For how long is my personal data processed?

If you are our customer your data will be processed by us until the product is transferred or the service is provided, respectively. With the proviso that if the data was processed by us for the purpose of asserting claims (e.g., in debt collection proceedings) we process the data for this purpose for the period of the statute of limitations for claims under the Civil Code. We process all data processed for accounting purposes and for tax reasons for 5 years calculated from the end of the calendar year in which the tax obligation arose. After the above-mentioned periods, your data is deleted or anonymized.

8. is it my responsibility to provide data?

The use of our products/services is entirely voluntary, however, we use the personal information you provide to contact you for the purpose of selling our products/services. In this case, failure to provide data may result in refusal to sell. Also, for accounting or tax reasons, we have a legal obligation to process your data, failure to provide it may result, for example, in the inability to issue an invoice or a named bill to you. If you provide us with your phone number or e-mail address, this is done on a voluntary basis – failure to do so will not result in a refusal to carry out the order or service.

9. what are my rights?

As the controller of your data, we provide you with the right to access your data, you can also rectify it, request its deletion or restriction of its processing, or withdraw your consent to its processing. You can also exercise the right to object to the processing of your data and the right to data portability to another data controller. If you wish to exercise any of these rights – please contact us via the email address provided above. We would also like to inform you that you have the right to file a complaint with the data protection supervisory authority.

10 Definitions and abbreviations

RODO – Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016. on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC;

PURPOSES OF PERSONAL DATA PROCESSING

Art. 6 paragraph. 1(c) and (f) of the RODO

Establishing your identity prior to the establishment of cooperation, including establishing the place of provision of the products/services we offer, which will allow us to effectively carry out the obligations imposed on us under our cooperation.

Art. 6 paragraph. 1 lit. b and f RODO

We contact you at the phone number or e-mail address you provided, for example, to provide information data regarding financial settlements, progress of work.

Art. 6 paragraph. 1 lit. b and f RODO

As a data controller who is an entrepreneur, we have the right to pursue claims from our business activities and thus process your data for this purpose.

Art. 6 paragraph. 1(c) of the RODO in conjunction with. from Art. 74 par. 2 of the Law of September 29, 1994. about accounting.

As an entrepreneur, we also keep accounts and have tax obligations – for example, we issue invoices for products sold/ services rendered, which may involve processing your personal data.

We care about the confidentiality of your data. Due to the necessity of providing us with proper organization, e.g. in the field of IT infrastructure or current issues concerning our business, as an entrepreneur, as well as realization of your rights, your personal data as our customer may be transferred to entities cooperating with us, in particular IT companies – providing us with IT solutions and hosting, legal advisors.

EMAIL SECURITY CLAUSE

E-mail messages and any attachments thereto constitute information protected from disclosure to unauthorized persons. If you have received an e-mail message and it is not intended for you, we warn you that disclosure, copying, distribution or use of this message and any attachments is prohibited. If you have received an email in error, please notify me immediately and send it back to the sender and delete it from your system along with any attachments.

1. DATA CONTROLLER

The administrator of your personal data is the Sea Palace in Gaski. 76-034 Sarbinowo, Gąski 14.

Contact is possible:

  • in the office,
  • via email correspondence: hello@palacmorski.pl,
  • contact form,
  • By mail – to the address of the company’s headquarters.
2. WEBSITE

The use of the website is related to the processing of the user’s personal data, which should be understood as, among other things. IP address or other identifiers and information collected through cookies or other similar technologies.

2.1 Cookies
The term “cookies” should be understood as IT data stored in the users’ terminal equipment, intended for use on the websites. These are small text files sent by the web server and stored by the browser’s computer software. They ensure proper operation of the site: they recognize the user’s device in order to display the site according to the user’s preferences, they allow to create anonymous statistics.

2.2 Acceptance of Cookies
Web browsing software allows cookies to be placed on the User’s terminal device by default. The user has the option to disable or restore the collection of cookies at any time by changing the settings in their web browser. Detailed information about the possibility and methods of handling cookies is available in the settings of your software (web browser). Please be advised that restrictions on the use of cookies may affect some functionality of the website.

2.3 Downloaded information
When you use the website, additional information may also be collected, in particular: the IP address assigned to your computer or your ISP’s external IP address, domain name, browser type, access time, operating system type. Navigation data may also be collected from Users, including information about the links and references they choose to click on or other actions they take on the website.

2.4 Information in forms
The Sea Palace in Gaski collects information provided voluntarily by the User. They are used for the purpose resulting from the function of the contact form. We can automatically save information about connection parameters, e.g. time stamp, IP address.

3. RIGHT TO FORGET

In accordance with the regulations, we will not hold your data without your consent or after it has been terminated. If you do not want your data to continue to be processed, you can withdraw your consent at any time. You also have the right to access your data, correct it, delete it or limit its processing, as well as transfer it.

4. SHARING OF PERSONAL DATA

Recipients of personal data of users of the website may be relevant state authorities acting on the basis of generally applicable laws. Personal data of Internet users may be transferred to entities that process personal data on behalf of the administrator, such as IT service providers or marketing agencies, with such entities processing data on the basis of a contract with the administrator and only in accordance with the administrator’s instructions.

5. DATA SECURITY

To ensure the security of the data entrusted to us, we have developed internal procedures and recommendations to prevent data from being shared with unauthorized persons. We control their implementation and constantly check their compliance with the relevant legal acts – the Law on Personal Data Protection, the Law on Provision of Electronic Services, as well as all kinds of implementing acts and Community legislation.

6. PRIVACY POLICY CHANGES

The Sea Palace in Gaski reviews and updates its privacy policy on an ongoing basis.

CONFIDENTIALITY CLAUSE

1. PURPOSES AND GROUNDS FOR PROCESSING PERSONAL DATA

We process your data for the following purposes:

  • For the purpose of service quotation, booking and performance of services, consistent with our business profile, possible processing of complaints, etc. Legal basis for data processing – Art. 6 paragraph. 1(b) of the RODO, – the data are necessary for the performance of the contract or taking steps to conclude the contract.
  • For the purpose of issuing an invoice and fulfilling other legal obligations such as keeping accounting records and for the purpose of asserting and defending against possible claims, Legal basis for data processing – Art. 6 paragraph. 1(c) and (f) RODO – the processing is necessary for the Administrator to comply with its obligations under the law and the Administrator’s legitimate interest.
  • To ensure the safety of employees, owners of the Sea Palace in Gaski in the form of monitoring selected rooms of the facility. Basis for processing – Art. 6 paragraph. 1(f) of the RODO – the legitimate interest of the Administrator ( to ensure the safety of all persons staying at the center). Monitoring data is deleted after a maximum of 3 months after registration.
  • For direct marketing purposes, where we will inform you about our services products and / or send you a newsletter we create. Basis for processing – Art. 6 paragraph. 1(f) RODO – the Administrator’s legitimate interest or the consent you have given (signing up for the newsletter).